.taskcluster.yml

version: 1
policy:
  pullRequests: collaborators
tasks:
  $let:

    project_name:
      bugmon

    matrix:
      language: python
      secrets:
        - type: env
          secret: project/fuzzing/codecov-bugmon
          name: CODECOV_TOKEN
          key: token
      script:
        - bash
        - '-xec'
        - tox; tox -e codecov
      jobs:
        include:
          - name: tests python 3.9
            version: "3.9"
            env:
              TOXENV: py39
          - name: tests python 3.10
            version: "3.10"
            env:
              TOXENV: py310
          - name: tests python 3.11
            version: "3.11"
            env:
              TOXENV: py311
          - name: tests python 3.12
            version: "3.12"
            env:
              TOXENV: py312
          - name: lint
            version: "3.10"
            env:
              TOXENV: lint
            script:
              - tox
          - name: semantic-release
            version: "3.10"
            script:
              - bash
              - '-xec'
              - >-
                git config --global user.email "bugmon@mozilla.com";
                git config --global user.name "semantic-release";
                git fetch origin master --tags;
                tox -e release
            when:
              branch: master
              all_passed: true
            secrets:
              - type: key
                secret: project/fuzzing/deploy-bugmon
                key: key

  in:
    $if: >
      (tasks_for == "github-push")
      || (tasks_for == "github-pull-request" && event["action"] in ["opened", "reopened", "synchronize"])
      || (tasks_for == "github-release" && event["action"] in ["published"])
    then:
      - created: { $fromNow: '' }
        deadline: { $fromNow: '1 hour' }
        provisionerId: proj-fuzzing
        workerType: ci
        payload:
          features:
            taskclusterProxy: true
          maxRunTime: 3600
          image:
            type: indexed-image
            path: public/orion-decision.tar.zst
            namespace: project.fuzzing.orion.orion-decision.master
          env:
            PROJECT_NAME: ${project_name}
            CI_MATRIX: { $json: { $eval: matrix } }
            GITHUB_EVENT: { $json: { $eval: event } }
            GITHUB_ACTION: ${tasks_for}
            TASKCLUSTER_NOW: ${now}
          command:
            - ci-decision
            - -v
        scopes:
          - queue:create-task:highest:proj-fuzzing/ci
          - queue:create-task:highest:proj-fuzzing/ci-*
          - queue:scheduler-id:taskcluster-github
          - secrets:get:project/fuzzing/codecov-bugmon
          - secrets:get:project/fuzzing/deploy-bugmon
        metadata:
          name: ${project_name} ci decision
          description: schedule ci tasks for ${project_name}
          owner: '${event.sender.login}@users.noreply.github.com'
          source: https://github.com/MozillaSecurity/bugzilla
    else: [ ]